In the past I had to do several DoS security audits, with mĂșltiples types of tests and intensities. Sometimes several DDoS protections were present like Akamai for static content, and Arbor for absorb part of the bandwith.
One consideration for the DoS/DDoS tools is that probably it will loss the control of the attacker host, and the tool at least has to be able to stop automatically with a timeout, but can also implement remote response checks.
In order to size the minimum mbps needed to flood a service or to retard the response in a significant amount of time, the attacker hosts need a bandwith limiter, that increments in a logarithmic way up to a limit agreed with the customer/isp/cpd.
There are DoS tools that doesn't have this timeouts, and bandwith limit based on mbps, for that reason I have to implement a LD_PRELOAD based solution: bwcontrol
Although there are several good tools for stressing web servers and web aplications like apache ab, or other common tools used for pen-testing, but I also wrote a fast web flooder in c++ named wflood.
As expected the most effective for taking down the web server are the slow-loris, slow-read and derivatives, few host were needed to DoS an online banking.
Remote attacks to database and highly dynamic web content were discarded, that could be impacted for sure.
I did another tool in c++ for crafting massive tcp/udp/ip malformed packets, that impacted sometimes on load balancers and firewalls, it was vulcan, it freezed even the firewall client software.
The funny thing was that the common attacks against Akamai hosts, where ineffective, and so does the slow-loris family of attacks, because are common, and the Akamai nginx webservers are well tunned. But when tried vulcan, few intensity was enough to crash Akamai hosts.
Another attack vector for static sites was trying to locate the IP of the customer instead of Akamai, if the customer doesn't use the Akamai Shadow service, it's possible to perform a HTTP Host header scan, and direct the attack to that host bypassing Akamai.
And what about Arbor protection? is good for reducing the flood but there are other kind of attacks, and this protection use to be disabled by default and in local holidays can be a mess.
More articles
- Hacking Tools Usb
- Hacker Tools Windows
- Hacking Tools Hardware
- Hack Tools For Mac
- New Hack Tools
- Growth Hacker Tools
- Hack Tools For Games
- Hack Tools
- Usb Pentest Tools
- What Is Hacking Tools
- Hacking Tools Software
- Pentest Tools Open Source
- Pentest Tools Download
- Pentest Tools Github
- Hacking Tools For Windows Free Download
- Hack Tools Pc
- Hack Tool Apk No Root
- Hack Tools For Ubuntu
- Pentest Tools Nmap
- Hacking Tools Online
- Hacker Tools
- Hacker Search Tools
- Growth Hacker Tools
- Hackrf Tools
- Hacking Tools Mac
- Hak5 Tools
- Hack Tools Pc
- Best Hacking Tools 2020
- Hackers Toolbox
- Hacking Tools Free Download
- Hack Apps
- Hack App
- Hacker Search Tools
- Pentest Tools Find Subdomains
- Best Hacking Tools 2020
- New Hacker Tools
- Pentest Tools Url Fuzzer
- Pentest Tools Download
- Pentest Tools For Android
- Pentest Tools Windows
- Hacking Tools Github
- Best Hacking Tools 2019
- Free Pentest Tools For Windows
- Hacking Tools Pc
- Pentest Tools Find Subdomains
- Hacking Tools For Pc
- Pentest Tools Apk
- Hacking Tools Software
- Pentest Tools Apk
- Hacker Tools Online
- Hacker Tools Windows
- Hacker Tools Windows
- Pentest Automation Tools
- Tools 4 Hack
- Hacking Tools For Windows
- Hacking Tools For Windows 7
- Hacking Tools For Games
- Nsa Hack Tools
- Hack Website Online Tool
- Hacking Tools Name
- Hack Tools Pc
- Hacker Security Tools
- Hack Rom Tools
- Hack App
- Pentest Tools For Mac
- Hacker Tools Github
- Hacker Tools 2020
- Hacking Tools Usb
- Hack And Tools
- How To Hack
- Easy Hack Tools
- Hacking Tools For Mac
- Hacker Tools Windows
- Hacking Tools Hardware
- Hack Tool Apk
- Pentest Tools Bluekeep
- Hacking Tools Online
- Hacker Tools Free
- Pentest Tools Apk
- Hacking Tools Usb
- Hack Tools For Ubuntu
- Pentest Tools Url Fuzzer
- Hacker Tools Online
- Pentest Tools Windows
- Hacking Tools For Beginners
- Hacking Tools 2019
- Hacker Tools For Ios
- New Hacker Tools
- Growth Hacker Tools
- Pentest Tools Windows
- Best Pentesting Tools 2018
- Tools For Hacker
- Hacking Tools Usb
- Pentest Tools Apk
- Hacking Tools Github
- Pentest Tools For Android
- Physical Pentest Tools
- Hacker Tools List
- Kik Hack Tools
- Tools 4 Hack
- Hacking Tools And Software
- Tools 4 Hack
- Pentest Tools Apk
- Hacker Search Tools
- Hack Tool Apk
- Hacking Tools For Beginners
- Hacking Tools Hardware
- Hacker Tools For Windows
- World No 1 Hacker Software
- Hacker Tools Online
- Hacker Search Tools
- Hacking Tools For Beginners
- Underground Hacker Sites
- Hacking Tools For Pc
- What Is Hacking Tools
- Pentest Tools Website
- Hacker Tools For Windows
- Hacking Tools For Pc
- Hacking Tools Kit
- Hack Tools Download
- Hacker Tools For Pc
- Hacker
- Nsa Hack Tools
- How To Make Hacking Tools
- Pentest Box Tools Download
- Hacking Tools Name
- Game Hacking
- Hacker Tools Hardware
- Hack Tools For Windows
- Underground Hacker Sites
- Hack Tool Apk No Root
- Termux Hacking Tools 2019
- Hacking Tools Free Download
- Hacker Tools 2020
- Hacker Hardware Tools
- Hacker Tools 2019
- Hacking Tools For Pc
- Hacker Tools 2020
- Hacker Tools 2020
- Hacking Tools 2020
- Hacker Hardware Tools
- Pentest Tools Kali Linux
- Hack Tools Mac
Posts
No comments:
Post a Comment